Insecure Initialization Vector (IV) Usage in Seafile Encryption

Insecure Initialization Vector (IV) Usage in Seafile Encryption

CVE-2013-7469 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Seafile through 6.2.11 always uses the same Initialization Vector (IV) with Cipher Block Chaining (CBC) Mode to encrypt private data, making it easier to conduct chosen-plaintext attacks or dictionary attacks.

Learn more about our Web Application Penetration Testing UK.